Akira
You must login to view this content
Aggregator
Akira
1 week 6 days ago
You must login to view this content
cohenido
Akira
1 week 6 days ago
You must login to view this content
cohenido
France's National ID Agency ANTS Allegedly Breached, 18 Million Citizen Records With Government-Verified Identities Listed for Sale
1 week 6 days ago
France's National ID Agency ANTS Allegedly Breached, 18 Million Citizen Records With Government-Verified Identities Listed for Sale
Dark Web Informer
CVE-2022-2785 | Linux Kernel BPF bpf_sys_bpf out-of-bounds (86f44fcec22c)
1 week 6 days ago
A vulnerability, which was classified as problematic, has been found in Linux Kernel. This affects the function bpf_sys_bpf of the component BPF. This manipulation causes out-of-bounds read.
This vulnerability is handled as CVE-2022-2785. The attack can be initiated remotely. There is not any exploit available.
To fix this issue, it is recommended to deploy a patch.
vuldb.com
CVE-2024-1984 | Graphene Plugin up to 2.9 on WordPress authorization
1 week 6 days ago
A vulnerability described as critical has been identified in Graphene Plugin up to 2.9 on WordPress. This issue affects some unknown processing. Such manipulation leads to missing authorization.
This vulnerability is referenced as CVE-2024-1984. It is possible to launch the attack remotely. No exploit is available.
vuldb.com
CVE-2024-1999 | Kadence Gutenberg Blocks Plugin up to 3.2.25 on WordPress Testimonial Widget cross site scripting
1 week 6 days ago
A vulnerability was found in Kadence Gutenberg Blocks Plugin up to 3.2.25 on WordPress. It has been classified as problematic. The affected element is an unknown function of the component Testimonial Widget. Performing a manipulation results in cross site scripting.
This vulnerability was named CVE-2024-1999. The attack may be initiated remotely. There is no available exploit.
vuldb.com
CVE-2024-2033 | Video Conferencing with Zoom Plugin up to 4.4.5 on WordPress information disclosure (ID 3054964)
1 week 6 days ago
A vulnerability described as problematic has been identified in Video Conferencing with Zoom Plugin up to 4.4.5 on WordPress. This affects an unknown function. Such manipulation leads to information disclosure.
This vulnerability is listed as CVE-2024-2033. The attack may be performed from remote. There is no available exploit.
vuldb.com
CVE-2024-2112 | 10Web Form Maker up to 1.15.22 on WordPress information disclosure
1 week 6 days ago
A vulnerability described as problematic has been identified in 10Web Form Maker up to 1.15.22 on WordPress. This vulnerability affects unknown code. The manipulation results in information disclosure.
This vulnerability is identified as CVE-2024-2112. The attack can be executed remotely. There is not any exploit available.
vuldb.com
CVE-2024-2165 | SEOPress Plugin up to 7.5.2.1 on WordPress cross site scripting
1 week 6 days ago
A vulnerability classified as problematic was found in SEOPress Plugin up to 7.5.2.1 on WordPress. Impacted is an unknown function. Such manipulation leads to cross site scripting.
This vulnerability is listed as CVE-2024-2165. The attack may be performed from remote. There is no available exploit.
vuldb.com
CVE-2024-2117 | Elementor Website Builder Plugin up to 3.20.2 on WordPress Path Widget cross site scripting
1 week 6 days ago
A vulnerability was found in Elementor Website Builder Plugin up to 3.20.2 on WordPress and classified as problematic. The affected element is an unknown function of the component Path Widget. The manipulation results in cross site scripting.
This vulnerability is identified as CVE-2024-2117. The attack can be executed remotely. There is not any exploit available.
vuldb.com
CVE-2024-2039 | Stackable Plugin up to 3.12.11 on WordPress Posts Block cross site scripting (ID 3058710)
1 week 6 days ago
A vulnerability classified as problematic has been found in Stackable Plugin up to 3.12.11 on WordPress. Affected by this issue is some unknown functionality of the component Posts Block Handler. This manipulation causes cross site scripting.
This vulnerability appears as CVE-2024-2039. The attack may be initiated remotely. There is no available exploit.
vuldb.com
CVE-2024-2125 | EnvíaloSimple Plugin up to 2.3 on WordPress cross-site request forgery
1 week 6 days ago
A vulnerability labeled as problematic has been found in EnvíaloSimple Plugin up to 2.3 on WordPress. Impacted is an unknown function. The manipulation results in cross-site request forgery.
This vulnerability is reported as CVE-2024-2125. The attack can be launched remotely. No exploit exists.
vuldb.com
CVE-2024-2026 | Passster Plugin up to 4.2.6.4 on WordPress Shortcode content_protector cross site scripting
1 week 6 days ago
A vulnerability was found in Passster Plugin up to 4.2.6.4 on WordPress. It has been declared as problematic. This affects the function content_protector of the component Shortcode Handler. Executing a manipulation can lead to cross site scripting.
This vulnerability is handled as CVE-2024-2026. The attack can be executed remotely. There is not any exploit available.
vuldb.com
CVE-2024-2018 | WP Activity Log Premium Plugin up to 4.6.4 on WordPress sql injection
1 week 6 days ago
A vulnerability was found in WP Activity Log Premium Plugin up to 4.6.4 on WordPress and classified as critical. The affected element is an unknown function. The manipulation results in sql injection.
This vulnerability is cataloged as CVE-2024-2018. The attack may be launched remotely. There is no exploit available.
vuldb.com
Critical FortiSandbox Vulnerabilities Allow Attackers to Execute Unauthorized Commands
1 week 6 days ago
Fortinet has disclosed two critical security vulnerabilities affecting its FortiSandbox platform, both carrying a CVSSv3 score of 9.1. The flaws, published on April 14, 2026, could allow unauthenticated remote attackers to execute arbitrary commands and bypass authentication entirely, posing a serious risk to enterprise environments relying on FortiSandbox for advanced threat detection. OS Command Injection […]
The post Critical FortiSandbox Vulnerabilities Allow Attackers to Execute Unauthorized Commands appeared first on Cyber Security News.
Guru Baran
NightSpire
1 week 6 days ago
You must login to view this content
cohenido
War Game Exercise Demonstrates How Social Media Manipulation Works
1 week 6 days ago
In an educational game called "Capture the Narrative," students created bots to sway a fictional election, simulating influence in real-world political scenarios.
Elizabeth Montalbano
Privacy-Preserving Data Analytics: Stop Collecting What You Do Not Need
1 week 6 days ago
There is an almost reflexive habit in data engineering: whenever you instrument an event, you attach a user ID. It feels natural. User IDs are how you join tables, track behavior, and measure engagement. The problem is that most teams attach them without ever asking whether they actually need them. That habit is becoming expensive...
The post Privacy-Preserving Data Analytics: Stop Collecting What You Do Not Need appeared first on Security Boulevard.
Asif Mansoor Amanullah
德国主权科技基金向 Mastodon 资助 61.4 万欧元
1 week 6 days ago
德国主权科技基金(Sovereign Tech Fund)向联邦宇宙微博客项目 Mastodon 资助 61.4 万欧元,用于支持 Mastodon 及其软件生态系统的改进和更新。这笔资金将投入到改进:黑名单同步;新的 Fediverse Auxiliary Service Provider(FASP)允许服务器之间共享存储和媒体处理资源;自动化内容检测;私信端到端加密;改进文档。相关改进预计在 2026 年底到 2027 年完成。